[Secure-testing-commits] r11253 - data/CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Mon Feb 23 18:36:03 UTC 2009
Author: jmm-guest
Date: 2009-02-23 18:36:02 +0000 (Mon, 23 Feb 2009)
New Revision: 11253
Modified:
data/CVE/list
Log:
dbus no-dsa
NFU
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-02-23 09:47:10 UTC (rev 11252)
+++ data/CVE/list 2009-02-23 18:36:02 UTC (rev 11253)
@@ -106,7 +106,7 @@
- ruby1.9 <unfixed> (bug #513528)
- ruby1.8 <unfixed>
CVE-2009-0641 (sys_term.c in telnetd in FreeBSD 7.0-RELEASE and other 7.x versions ...)
- TODO: check
+ NOT-FOR-US: FreeBSD telnetd (apparently there's some common code base in netkit-telnet, but it's not affected
CVE-2009-0640 (Directory traversal vulnerability in the administrative web server in ...)
NOT-FOR-US: Swann DVR4-SecuraNet
CVE-2009-0639 (PHP remote file inclusion vulnerability in moduli/libri/index.php in ...)
@@ -5924,7 +5924,8 @@
CVE-2008-4312
RESERVED
CVE-2008-4311 (The default configuration of system.conf in D-Bus (aka DBus) before ...)
- - dbus 1.2.1-5 (bug #508032)
+ - dbus 1.2.1-5 (low; bug #508032)
+ [etch] - dbus <no-dsa> (Backport for Etch too risky for regressions for too little gain)
CVE-2008-4310 (httputils.rb in WEBrick in Ruby 1.8.1 and 1.8.5, as used in Red Hat ...)
- ruby <not-affected> (bug #508030)
NOTE: Red Hat-specific
More information about the Secure-testing-commits
mailing list